PT-2022-27608 · Tenda · Tenda I22
Published
2022-12-20
·
Updated
2022-12-24
·
CVE-2022-45666
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Tenda i22 version 1.0.0.3(4687)
Description
A buffer overflow issue was discovered in the formwrlSSIDset function via the
list parameter. This issue may be exploited, potentially leading to unauthorized access or control.Recommendations
For Tenda i22 version 1.0.0.3(4687), consider restricting access to the formwrlSSIDset function until a patch is available. As a temporary workaround, avoid using the
list parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tenda I22